Hyliion is looking for an experienced Cyber Security Manager to join our team in Cedar Park, TX. This full-time position offers the opportunity to be a part of a fast-growing company that is revolutionizing the trucking industry. We are seeking exceptionally talented individuals that are highly motivated to revolutionize an industry, reduce the use of fuel and have some fun.  You will be joining an experienced IT and Security team laying out the foundation of Cyber Security in this fast-paced environment.  In this role, you will be laying the strategic direction of Hyliion’s Cyber Security posture and compliance with regulatory requirements. Reports to Chief Information Officer.

Essential Functions: Reasonable accommodations may be made to enable individuals with disabilities to perform the essential functions.

Hyliion is looking for an experienced cyber security expert to manage our security and compliance requirements. As a foundational member of the IT Security and Compliance team, you will help drive the direction of our security and compliance practice and have an impact from day one. You will ensure compliance with our audit obligations and drive continual improvement in our risk and cyber-security posture.

• Oversee the information security programs including data protection, risk management, and compliance testing.
• Improve existing compliance programs and processes.
• Develop, review, and modify information security and privacy policies.
• Design and execute audit procedures to assess and measure company compliance with its security policies and procedures.
• Monitor advancements in information privacy laws to ensure organizational adaptation and compliance.  
• Evaluate security incidents for violations of privacy principles or legal standards.
• Manage compliance testing and monitoring of current and future regulatory obligations, and other regulatory matters as required. 
• Conduct internal security risk assessments and security compliance audits.
• Establish IT security audit procedures relevant to GDPR, SOC2, ISO26262, NIST.
• Coordinate third-party audits.
• Develop materials and tools to effectively communicate compliance and corporate requirements.
• Develop policy, plans, and strategy in compliance with laws, regulations, policies, and standards in support of organizational cyber activities.
• Collect, analyze, and prepare reports required for senior management, regulators, and other relevant stakeholders.
• Document, investigate, and report cybersecurity compliance issues and incidents, where necessary.
• Work with business leaders to ensure information security risk findings are reviewed and solutions are implemented.
• Understand, develop, and deliver meaningful reports on the program state and adherence to frameworks and standards.
• Lead the escalation and resolution of risk and compliance issues with appropriate stakeholders.
• Liaise with relevant parties to commission activities related to contingency planning, business continuity management, and IT disaster recovery.
• Develop and maintain a vendor security and compliance program.
• Assist the sales team in responding to RFPs and security questionnaires; maintain a library of security and compliance RFP responses.
• Manage Hyliion’s third party vendors with new and recurring security assessments.

Job Knowledge, Skills, and Abilities Requirements:

• Significant knowledge and experience with legal, privacy, and regulatory compliance standards such as ISO26262, SOC2, GDPR, SOX
• The ability to work in a fast-paced environment and the skills to deal with ambiguity.
• Experience with IT governance, risk, and compliance management.
• Experience coordinating tasks to complete third party assessments.
• Experience writing policies, procedures, and controls in one or more standards/frameworks.
• Knowledge of computer networking concepts and protocols and network security methodologies.
• Knowledge of risk management processes.
• Knowledge of cyber threats and vulnerabilities.
• Experience with Risk Management in both a compliance and security context.
• The ability to work in a fast-paced environment and the skills to deal with ambiguity.
• Ability to handle multiple competing priorities.
• Ability to work well under minimal supervision.

Required Qualifications:

• Bachelor’s degree in Computer Science, Information Systems, or related field is preferred.
• 10+ years of IT experience with a focus on security and compliance.
• CISSP, CISM, or other relevant security-related designation.

Preferred Qualifications: (if applicable)

• Automotive industry experience.
• Experience securing the public cloud (AWS, GCP, Azure).

Physical Demands: 

• Ability to lift and/ or move up to 25 pounds.
• Crouching: Bending the body downward and forward by bending leg and spine.
• Reaching: Extending hand(s) and arm(s) in any direction.
• Standing: Remaining upright on the feet, particularly for sustained periods of time.
• Walking: Moving about on foot to accomplish tasks, particularly for long distances or moving from one work site to another.
• Talking: Expressing or exchanging ideas by means of the spoken word; those activities where detailed or important spoken instructions must be conveyed to other workers accurately, loudly, or quickly.
• Hearing: Perceiving the nature of sounds at normal speaking levels with or without correction and having the ability to receive detailed information through oral communication and making fine discriminations in sound.
• Repetitive motions: Making substantial movements (motions) of the wrists, hands, and/or fingers.
• The worker is required to have close visual acuity to perform an activity such as: preparing and analyzing data and figures; viewing a computer terminal; extensive reading; visual inspection involving small defects, small parts, and/or operation of machines (including inspection); using measurement devices; and/or assembly or fabrication of parts at distances close to the eyes.

Work Environment:

• The noise level in the work environment is usually moderate.
• For the most part, ambient room temperatures, lighting and traditional equipment as found in a typical office.

Hyliion is committed to diversity and is proud to be an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, gender, gender identity or expression, sexual orientation, national origin, genetics, disability, age, or veteran status.